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~ The MAILING DATE of this communication appears on the cover sheet with the correspondence address- 

All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS 
NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 

1 . |EI This communication is responsive to the communication filed on February 17, 2010. 

2. The allowed claim(s) is/are 5,8-10,51-56,58 and 59 . 

3. □ Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 

a) □ All b)DSome* c) □ None of the: 

1. □ Certified copies of the priority documents have been received. 

2. □ Certified copies of the priority documents have been received in Application No. . 

3. □ Copies of the certified copies of the priority documents have been received in this national stage application from the 

International Bureau (PCT Rule 17.2(a)). 
* Certified copies not received: . 

Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements 
noted below. Failure to timely comply will result in ABANDONMENT of this application. 
THIS THREE-MONTH PERIOD IS NOT EXTENDABLE. 

4. □ A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF 

INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient. 

5. □ CORRECTED DRAWINGS ( as "replacement sheets") must be submitted. 

(a) □ including changes required by the Notice of Draftsperson's Patent Drawing Review ( PTO-948) attached 

1 ) □ hereto or 2) □ to Paper No./Mail Date . 

(b) □ including changes required by the attached Examiner's Amendment / Comment or in the Office action of 

Paper No./Mail Date . 

Identifying indicia such as the application number (see 37 CFR 1. 84(c)) should be written on the drawings in the front (not the back) of 
each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d). 

6. □ DEPOSIT OF and/or INFORMATION about the deposit of BIOLOGICAL MATERIAL must be submitted. Note the 

attached Examiner's comment regarding REQUIREMENT FOR THE DEPOSIT OF BIOLOGICAL MATERIAL. 
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1 . ^ Notice of References Cited (PTO-892) 

2. □ Notice of Draftperson's Patent Drawing Review (PTO-948) 

3. □ Information Disclosure Statements (PTO/SB/08), 

Paper No./Mail Date 

4. □ Examiner's Comment Regarding Requirement for Deposit 

of Biological Material 



5. □ Notice of Informal Patent Application 

6. □ Interview Summary (PTO-413), 

Paper No./Mail Date . 

7. ^ Examiner's Amendment/Comment 

8. ^ Examiner's Statement of Reasons for Allowance 

9. □ Other . 



/Charlie C Agwumezie/ 
Primary Examiner, Art Unit 3685 
May 17,2010 
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DETAILED ACTION 
EXAMINER'S AMENDMENT 

1 . An examiner's amendment to the record appears below. Should the changes 
and/or additions be unacceptable to applicant, an amendment may be filed as provided 
by 37 CFR 1 .312. To ensure consideration of such an amendment, it MUST be 
submitted no later than the payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview 
with David Nigra on May 17, 2010. 

Acknowledgments 

3. Applicants amendment filed on February 17, 2010 is acknowledged. Accordingly 
claims 5, 8-10, 51-56, and 58-59 remain pending and are allowed subject to the 
examiner's amendment. 

The Application has been amended as follows: 

1. Claims 1-4 (canceled). 

Claim 5 (Currently Amended) A m e thod for prot e ct i ng a n e twork s e rv e r from b ei ng us e d 
as th e bas i s of an attack on a n e twork cl ie nt, th e m e thod compr i s i ng: 

A method comprising: 
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receiving, by a first server comprising a processor and a non-transitory, 
tangible memory, a transaction request from a user for a transaction at a 
merchant server: 

receiving, bv said first server, a third party request comprising executable 
commands being associated with a selected programming language: 



e x e cutab le commands b ei ng assoc i at e d w i th a s ele ct e d programm i ng l anguag e , 



at least one of editing and removing at least a portion of said executable 
commands, 

wherein said at least one of editing and removing comprises at least one 

of 



network client by removing a character of said executable commands; and 

rendering said executable commands unexecutable by said 
network client by replacing particular characters within said executable 
commands; 

issuing a challenge to a second server comprising a processor and a non- 
transitory, tangible memory and forwarding the challenge from said second 
server to the user, wherein said challenge is passed to an intelligent token for 
processing said challenge, wherein said intelligent token generates a response to 
said challenge; 



n e twork 




wh e r ei n sa i d trust e d port i on i s a subs e t of sa i d n e twork 



: ;-afldr 



rendering said executable commands unexecutable by a_sa\4 



receiving said response bv said second server from the user based upon 



said challenge; 
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processing said response by said second server and verifying the 
intelligent token: 

assembling credentials for the transaction at said first server, said 
credentials comprising at least one key: 

providing at least a portion of said assembled credentials to said user; 

receiving, by said second server, a second request from said user, said 
second request including said portion of said assembled credentials provided to 
said user: and 

validating, by said second server, said portion of said assembled 
credentials provided to said user with said key of said assembled credentials 
providing access to a transaction service. 

Claim 6 (canceled) 

Claim 7 (canceled) 

Claim 8 (Previously Presented) The method of Claim 5, further comprising rejecting a 
request when said request contains said executable commands having a hostile 
character. 

Claim 9 (Previously Presented) The method of Claim 5, further comprising logging said 
executable commands to form a security log. 

Claim 10 (Previously Presented) The method of Claim 9, further comprising reviewing 
said security log to determine whether said executable commands are hostile. 

Claim 11-50 (Canceled) 

Claim 51 (Previously Presented) The method of Claim 5, wherein said executable 
commands cause an unwanted action when executed. 
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Claim 52 (Previously Presented) The method of Claim 5, wherein said executable 
commands are malicious. 

Claim 53 (Previously Presented) The method of Claim 5, further comprising receiving a 
request for a connection at said network server from said network client. 

Claim 54 (Previously Presented) The method of Claim 53, further comprising verifying 
that a response from said network server to said network client is void of said 
executable commands. 

Claim 55 (Previously Presented) The method of Claim 54, further comprising providing 
said response from said network server to said network client. 

Claim 56 (Previously Presented) The method of Claim 5 wherein said programming 
language comprises javascript. 

Claim 57 (Canceled) 

Claim 58 (Currently Amended) The method claim [[1]] 5, wherein said rendering said 
executable commands unexecutable by said network client by replacing 
particular characters within said executable commands comprises converting a 
script format character to another character, wherein said script format character 
identifies a block of code. 

Claim 59 (Currently Amended) The method claim [[1]] 5, wherein said rendering said 
executable commands unexecutable by said network client by removing a 
character of said executable commands comprises removing a script format 
character, wherein said script format character identifies a block of code. 

3. Claims 5, 8-1 0, 51 -56, and 58-59 have been allowed. 
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Reasons for Allowance 

4. The following is an examiner's statement of reasons for allowance: 
The closest prior art of record is U.S. Patent No. 6,272,641 B1 to Ji. 
Regarding the claimed terms, the Examiner notes that a "general term must be 
understood in the context in which the inventor presents it." In re Glaug F.3d 1335, 
1340, 62 USPQ2d 1151, 1154 (Fed. Cir. 2002). Therefore the Examiner must interpret 
the claimed terms as found on pages 1-29 of the specification. Clearly almost all the 
general terms in the claims may have multiple meanings. So where a claim term "is 
susceptible to various meanings, ...the inventor's lexicography must prevail...." Id. 
Using these definitions for the claims, the claimed invention was not reasonably found in 
the prior art. 

5. The primary reference Ji (U.S. Patent No. 6,272,641 B1) discloses an 
applet scanner that scans Internet-obtained applets for appropriate marking with 
additional security monitoring. See Abstract. Ji's invention involves a scanner that scans 
applets for "problematic" code. See col. 3, lines 25-30. If such code is found, Ji's 
scanner then "marks" the problematic code, which may include the insertion of 
additional code. See col. 3, lines 27-34. Upon execution of the applet on the client, the 
"marked" code is monitored for compliance with a security policy. See col. 3, lines 47- 
58. As previously noted, Ji teaches insertion of code near "problematic" code. Ji is not 
altering the problematic code at all, but instead is annotating the code for later 
evaluation in a run time environment. After Ji's insertion of special codes in front of 
problematic code, the problematic code may or may not remain in executable form. 
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Further, Ji contemplates execution of at least a portion of the executable code, albeit 
under monitoring. 

Jii however does not teach at least one of editing and removing at least a portion 
of said executable commands, wherein said at least one of editing and removing 
comprises at least one of rendering said executable commands unexecutable by a 
network client by removing a character of said executable commands; and rendering 
said executable commands unexecutable by said network client by replacing particular 
characters within said executable commands 

Moreover, the missing claimed elements from Ji are not found in a reasonable 
number of reference(s). Yet even if the missing claimed elements were found in a 
reasonable number of references, a person of ordinary skill in the art at the time the 
invention was made would not have been motivated to include these missing elements 
in an embodiment in the Ji disclosure because: such would have changed the basic 
working principles and the operation of Ji which requires an insertion of a code near the 
executable command. 

6. Any comments considered necessary by applicant must be submitted no later 
than the payment of the issue fee and, to avoid processing delays, should preferably 
accompany the issue fee. Such submissions should be clearly labeled "Comments on 
Statement of Reasons for Allowance." 



Conclusion 
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4. The prior arts made of record and not relied upon is considered pertinent to 
applicants disclosure. 

• Kuo et al (U.S. Patent No. 6,230,288 B1) discloses Method of Treating 
Whitespace during Virus Detection. 

• Green et al (U.S. Patent No. 5,913,024) discloses Secure Server Utilizing 
Separate Protocol Stack. 

• Guheen et al (U.S. Patent No. 6,473,794 B1) discloses System for 
Establishing Plan to Test Components of Web Based Framework by 
Displaying Pictorial Representation and Conveying Indicia Coded 
Components of Existing Network Framework. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Charles C. Agwumezie whose number is (571) 272- 
6838. The examiner can normally be reached on Monday - Friday 8:00 am - 5:00 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Calvin Hewitt can be reached on (571) 272 - 6709. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. For 
more information about the PAIR system, see http://pair-direct.uspto.gov . Should you 
have questions on access to the Private PAIR system, contact the Electronic Business 
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Center (EBC) at 866-217-9197 (toll free). If you would like assistance from a USPTO 
Customer Service Representative or access to the automated information system, call 
800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



/Charlie C Agwumezie/ 
Primary Examiner, Art Unit 3685 
May 17, 2010 



